Hackers are abusing Zendesk to run brand impersonation scams

Security researchers from CloudSEK observed hackers running pig butchering scams
They’re impersonating legitimate businesses through Zendesk’s services
The researchers said Zendesk’s vetting system isn’t thorough enough

A new report from cybersecurity researchers CloudSEK has found that cybercriminals are abusing Zendesk to run brand impersonation scams, with hackers abusing simple Zendesk features to engage in “pig butchering” scams and trick people out of their money.

Zendesk is a customer service and engagement platform that helps businesses manage customer interactions across various communication channels.

The platform allows users to register free trial accounts which, in turn, grant the ability to create subdomains, unfortunately allowing criminals to abuse it at scale.

Pig butchering

First, they would create a fake subdomain, mimicking a legitimate company, which would be used to send phishing emails pretending to be actual customer support communication.

Since Zendesk is a legitimate company, the emails often make it past spam filters and, disguised using accurate branding, land right into people’s inboxes. The emails apparently carry an image hyperlinked to a phishing page, where the scam continues.

The goal of the scam is to get people investing in a fake investment platform or support page – a staple of pig butchering scams. The ruse is designed to last as long as possible, draining money from the victim until they realize they’ve been defrauded.

The problem, according to CloudSEK, is that Zendesk doesn’t perform thorough email validation when adding users to subdomains. “This oversight allows attackers to target employees or customers with phishing attempts masked as legitimate ticket assignments,” the researchers said.

Zendesk has been informed of the flaw and its potential for misuse, following CloudSEK’s responsible disclosure policy, CloudSEK concluded. We have reached out to the company and will update the article if we hear back.

https://cdn.mos.cms.futurecdn.net/XXKymchvRNKFMhMywufXYM-1200-80.jpg

Source link

Why AI needs zkML: the missing puzzle piece to AI accountability

Sustainability Week: Why now is the time to leverage technology and more sustainable practices to optimize business buying

Perplexity’s voice assistant offers a Siri alternative for iPhones

LG just launched a 4K touchscreen monitor you can roll around the house and yes, it has apps and charges your laptop too

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Which Celebrity Styles Americans Copy Most in 2025: New Study

New ‘Westworld’ trailer introduces us to another dystopian tech company

What’s the point of ‘Charlie’s Angels’ without Sam Rockwell dancing?

These striking photos capture the future of human flight

Kuntarahoitus to issue €10 million bond under existing program

NLB to propose 17% dividend hike at June AGM

Japan stocks higher at close of trade; Nikkei 225 up 1.95%

evoke plc schedules AGM for May 28, invites shareholder queries

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

Hackers are abusing Zendesk to run brand impersonation scams

Kuntarahoitus to issue €10 million bond under existing program

NLB to propose 17% dividend hike at June AGM

Japan stocks higher at close of trade; Nikkei 225 up 1.95%

evoke plc schedules AGM for May 28, invites shareholder queries